Vulnerabilities > Wireshark

DATE CVE VULNERABILITY TITLE RISK
2007-06-26 CVE-2007-3391 Improper Input Validation vulnerability in Wireshark 0.99.5
Wireshark 0.99.5 allows remote attackers to cause a denial of service (memory consumption) via a malformed DCP ETSI packet that triggers an infinite loop.
network
low complexity
wireshark CWE-20
7.8
2007-06-26 CVE-2007-3390 Protocol Denial of Service vulnerability in Wireshark
Wireshark 0.99.5 and 0.10.x up to 0.10.14, when running on certain systems, allows remote attackers to cause a denial of service (crash) via crafted iSeries capture files that trigger a SIGTRAP.
network
low complexity
wireshark
5.0
2007-06-26 CVE-2007-3389 Improper Input Validation vulnerability in Wireshark
Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload.
network
low complexity
wireshark CWE-20
5.0
2007-02-02 CVE-2007-0459 Protocol Denial of Service vulnerability in Wireshark 0.99.2/0.99.3/0.99.4
packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.4 allows remote attackers to cause a denial of service (application crash or hang) via fragmented HTTP packets.
network
low complexity
wireshark
5.0
2007-02-02 CVE-2007-0458 Protocol Denial of Service vulnerability in Wireshark 0.99.3/0.99.4
Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors, a different issue than CVE-2006-5468.
network
wireshark
4.3
2007-02-02 CVE-2007-0457 Protocol Denial of Service vulnerability in Wireshark
Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly Ethereal) 0.10.14 through 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.
network
wireshark
4.3
2007-02-02 CVE-2007-0456 Protocol Denial of Service vulnerability in Wireshark 0.99.3/0.99.4
Unspecified vulnerability in the LLT dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors.
network
wireshark
4.3
2006-10-28 CVE-2006-5595 Remote Security vulnerability in Wireshark
Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal) 0.99.3 has unspecified attack vectors related to WEP key parsing.
network
low complexity
wireshark
5.0
2006-10-28 CVE-2006-5469 Protocol Dissectors Denial of Service vulnerability in Wireshark
Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal) 0.10.11 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger a null dereference.
network
low complexity
wireshark
5.0
2006-10-28 CVE-2006-4574 Reachable Assertion vulnerability in Wireshark 0.10.1/0.99.2/0.99.3
Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values.
network
low complexity
wireshark CWE-617
7.5